[Mailman-Users] Harvesting addresses

Richard Barrett r.barrett at openinfo.demon.co.uk
Sat Feb 15 13:50:06 CET 2003

At 11:38 15/02/2003, Paul Kleeberg wrote:
>I like the way that mailman changes e-mail addresses so that they cannot 
>be automatically harvested by spammers, but I am concerned by the fact 
>that a lists entire archive can be downloaded.  I want to have an open 
>list but I am a bit uncomfortable with allowing the entire archive to be 
>retrieved (with intact e-mail addresses) with a single click of the mouse.
>Has anyone created a patch to remove the downloadable versions?  Am I just 
>being paranoid?
>Paul Kleeberg
>paul at fpen.org

I quick and simple non-patch fix is to put a rewrite rule into you web 
server's httpd.conf that rewrites the URI's of the files you are concerned 
about to a polite rejection page. That is what I've opted to do with 
RewriteRules like this:

$1/unavailable.html [R]
RewriteRule ^(/pipermail/[^/\.]+)\.mbox/ $1/unavailable.html [R]

Just because you are paranoid doesn't mean people aren't picking on you.

More information about the Mailman-Users mailing list